invictus-ir / KubeForenSysLinks
A Kubernetes Forensic Collection Framework for Azure Kubernetes Service
☆36Updated last month
Alternatives and similar repositories for KubeForenSys
Users that are interested in KubeForenSys are comparing it to the libraries listed below
Sorting:
- An index of publicly available and open-source threat detection rulesets.☆125Updated 5 months ago
- Mapping of open-source detection rules and atomic tests.☆177Updated 8 months ago
- Framework for Monitoring File Ingestion Source for Yara Matches☆50Updated 6 months ago
- ☆163Updated this week
- A tool to help pentesters quickly identify privileged principals and second-order privilege escalation opportunities in unfamiliar AWS ac…☆46Updated 2 weeks ago
- When good OAuth apps go rogue. Documents observed OAuth application tradecraft☆79Updated last month
- Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.☆151Updated this week
- ☆22Updated 7 months ago
- ☆18Updated last week
- Putting a leash on naughty AWS permissions☆130Updated last month
- IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.☆105Updated last year
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆102Updated last year
- RansomWhen is a tool to enumerate identities that can lock S3 Buckets using KMS, resulting in ransomwares, as well as detect occurances o…☆58Updated 8 months ago
- A comprehensive GenAI protection system designed to protect against malicious prompts, injection attacks, and harmful content. System inc…☆73Updated this week
- ☆44Updated 2 months ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆143Updated 9 months ago
- PoC shadow SaaS and insecure credential detection system using a browser extension.☆40Updated last month
- Collection of Docker honeypot logs from 2021 - 2024☆36Updated last year
- ☆75Updated 6 months ago
- This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs☆37Updated last year
- Rules shared by the community from 100 Days of YARA 2025☆35Updated 8 months ago
- Generate datasets of cloud audit logs for common attacks☆220Updated last year
- Automation tool for Windows Deception Host Burn-In☆86Updated 10 months ago
- Halberd : Multi-Cloud Agentic Attack Tool☆311Updated last month
- Feed it a number. Your cloned voice does the social engineering, while you sip your coffee. A ghost that talks on the phone for you.☆102Updated 4 months ago
- AHHHZURE is an automated deployment script that creates a vulnerable Azure cloud lab for offensive security practitioners and enthusiasts…☆105Updated last year
- ☆149Updated 2 weeks ago
- Living Off Security Tools☆51Updated 11 months ago
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆109Updated 10 months ago
- ☆35Updated 5 months ago